Skip to content

BUG 1670700: data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server #1483

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
openshift-merge-robot merged 1 commit into from
Mar 29, 2019
Merged

BUG 1670700: data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server #1483

openshift-merge-robot merged 1 commit into from
Mar 29, 2019

Conversation

@hexfusion
Copy link
Contributor

@hexfusion hexfusion commented Mar 28, 2019

This PR adds metric-signer CA's to kube-etcd-signer-server as part of voyage to etcd metrics by default. The eventual result is the etcd static pod procuring TLS certs with a separate chain of trust vs Peer and Server .

@hexfusion
data/data/bootstrap: set metric-signer flags for kube-etcd-signer-server
b5d8746 
Signed-off-by: Sam Batschelet <sbatsche@redhat.com>
@openshift-ci-robot openshift-ci-robot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Mar 28, 2019
@hexfusion
Copy link
Contributor Author

hexfusion commented Mar 28, 2019

could not resolve inputs: could not determine inputs for step [input:root]: could not resolve base image: the server was unable to return a response in the time allotted, but may still be processing the request (get imagestreamtags.image.openshift.io release:golang-1.10)

/test unit

@hexfusion
Copy link
Contributor Author

hexfusion commented Mar 28, 2019

/retest

@hexfusion hexfusion changed the title data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server BUG670700:data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server Mar 28, 2019
@abhinavdahiya abhinavdahiya changed the title BUG670700:data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server BUG 670700: data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server Mar 28, 2019
@hexfusion hexfusion changed the title BUG 670700: data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server BUG 1670700: data/data/bootstrap: set metric-ca flags for kube-etcd-signer-server Mar 28, 2019
s-urbaniak
s-urbaniak approved these changes Mar 29, 2019
View reviewed changes
Copy link
Contributor

@s-urbaniak s-urbaniak left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/approve

As discussed out of band: this, and especially the other corresponding PR https://github.com/openshift/installer/pull/1291/files "just" changes the secret location (and adds a configmap for the CA) of the etcd client secrets/cert. The fact that they are proxied is an opaque fact for the cluster monitoring operator. Note that the CA has to be loaded from a configmap now and the secret location has to be changed in the code that was introduced in openshift/cluster-monitoring-operator#239

@s-urbaniak s-urbaniak mentioned this pull request Mar 29, 2019
Merged
@abhinavdahiya
Copy link
Contributor

abhinavdahiya commented Mar 29, 2019

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Mar 29, 2019
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Mar 29, 2019

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: abhinavdahiya, hexfusion, s-urbaniak

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci-robot openshift-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Mar 29, 2019
@openshift-merge-robot openshift-merge-robot merged commit 554de6f into openshift:master Mar 29, 2019
@s-urbaniak s-urbaniak mentioned this pull request Apr 2, 2019
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@crawford crawford Awaiting requested review from crawford

@staebler staebler Awaiting requested review from staebler

1 more reviewer

@s-urbaniak s-urbaniak s-urbaniak approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@abhinavdahiya abhinavdahiya

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@hexfusion @abhinavdahiya @openshift-ci-robot @s-urbaniak @openshift-merge-robot